On 2/7/12 11:23 AM, Andrey Novoseltsev wrote:
On Feb 7, 10:00 am, Jason Grout<jason-s...@creativetrax.com> wrote:
Right now, we don't have a switch to require only OpenID logins, so we'd
have to do that somehow.
A huge plus of this is that passwords would no longer be transmitted
insecurely, if I understand things correctly.
Jason
This would be wonderful, I don't think many users mind that someone
can look at their worksheets, but transmitting passwords insecurely is
very bad as they can be the same as for other accounts including
banking ones. Would it be possible to start new servers with OpenID
authorization out-of-the-box?
All you have to do with the new server is check a box in the notebook
settings page to turn on OpenID.
On the other hand, will encrypted authentication and unencrypted work
have the issue of "connecting to an open session"? As outlined here:
http://lifehacker.com/5672313/sniff-out-user-credentials-at-wi+fi-hotspots-with-firesheep
Probably. If you want security, then use SSL on your server.
Thanks,
Jason
--
You received this message because you are subscribed to the Google Groups
"sage-edu" group.
To post to this group, send email to sage-edu@googlegroups.com.
To unsubscribe from this group, send email to
sage-edu+unsubscr...@googlegroups.com.
For more options, visit this group at
http://groups.google.com/group/sage-edu?hl=en.
